HIGH✓ PATCH🇬🇧 English

CVE-2016-6468

CVSS 8.8v3.0pub. 2016-12-14upd. 2026-05-06

A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. More Information: CSCvb06663. Known Affected Releases: 11.5(1.10000.4). Known Fixed Releases: 12.0(0.98000.14).

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Cisco Emergency Responder

    APP
    Cisco
    11.5\(1.10000.4\)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2023-20101CRITICAL9.8ten sam produkt

A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an a...

CVE-2017-12337CRITICAL9.8ten sam produkt

A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating Sy...

CVE-2023-20259HIGH8.6ten sam produkt

A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenti...

CVE-2017-6779HIGH7.5ten sam produkt

Multiple Cisco products are affected by a vulnerability in local file management for certain system log files ...

CVE-2008-1154HIGH10.0ten sam produkt

The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unifie...

CVE-2016-6468 — HIGH 8.8 | CVEbaza.pl